|
|||
Rule General Information |
---|
Release Date: | 2016-06-23 | |
Rule Name: | Apache HTTP Server Mod_proxy Denial of Service Vulnerability -3 (CVE-2014-0117) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | The mod_proxy module in the Apache HTTP Server 2.4.x before 2.4.10, when a reverse proxy is enabled, allows remote attackers to cause a denial of service (child-process crash) via a crafted HTTP Connection header. | |
Impact: | An attacker can launch a denial of service attack by exploiting the vulnerability successfully. | |
Affected OS: | Solaris, FreeBSD, Windows, Linux, Other Unix, Mac OS | |
Reference: | http://advisories.mageia.org/MGASA-2014-0305.html http://httpd.apache.org/security/vulnerabilities_24.html http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html |
|
Solutions |
---|
More advisories have been published on the website, please visit for more suggestions: http://httpd.apache.org/security/vulnerabilities_24.html |